PANews reported on January 26 that Matcha Meta reported a security vulnerability involving SwapNet, putting users who have not enabled the "one-time authorization" feature at risk.

To date, approximately $16.8 million worth of crypto assets have been stolen. On the Base chain, the attackers have exchanged approximately 10.5 million USDC for approximately 3,655 ETH and have begun transferring funds across chains to Ethereum. Please immediately revoke all authorizations to independent aggregators outside of the 0x one-time authorization contract.